Справочник Пользователя для Intel E3-1260L CM8062301061800
Модели
CM8062301061800
Technologies
38
Datasheet, Volume 1
3.1.2
Intel
®
VT-x Features
The processor core supports the following Intel VT-x features:
Extended Page Tables (EPT)
EPT is hardware assisted page table virtualization
It eliminates VM exits from guest OS to the VMM for shadow page-table
maintenance
Virtual Processor IDs (VPID)
Ability to assign a VM ID to tag processor core hardware structures (such as
TLBs)
This avoids flushes on VM transitions to give a lower-cost VM transition time
and an overall reduction in virtualization overhead.
Guest Preemption Timer
Mechanism for a VMM to preempt the execution of a guest OS after an amount
of time specified by the VMM. The VMM sets a timer value before entering a
guest
guest
The feature aids VMM developers in flexibility and Quality of Service (QoS)
assurances
Descriptor-Table Exiting
Descriptor-table exiting allows a VMM to protect a guest OS from internal
(malicious software based) attack by preventing relocation of key system data
structures like IDT (interrupt descriptor table), GDT (global descriptor table),
LDT (local descriptor table), and TSS (task segment selector).
structures like IDT (interrupt descriptor table), GDT (global descriptor table),
LDT (local descriptor table), and TSS (task segment selector).
A VMM using this feature can intercept (by a VM exit) attempts to relocate
these data structures and prevent them from being tampered by malicious
software.
software.
3.1.3
Intel
®
VT-d Objectives
The key Intel VT-d objectives are domain-based isolation and hardware-based
virtualization. A domain can be abstractly defined as an isolated environment in a
platform to which a subset of host physical memory is allocated. Virtualization allows
for the creation of one or more partitions on a single system. This could be multiple
partitions in the same operating system, or there can be multiple operating system
instances running on the same system offering benefits such as system
consolidation, legacy migration, activity partitioning, or security.
virtualization. A domain can be abstractly defined as an isolated environment in a
platform to which a subset of host physical memory is allocated. Virtualization allows
for the creation of one or more partitions on a single system. This could be multiple
partitions in the same operating system, or there can be multiple operating system
instances running on the same system offering benefits such as system
consolidation, legacy migration, activity partitioning, or security.
3.1.4
Intel
®
VT-d Features
The processor supports the following Intel VT-d features:
Memory controller and Processor Graphics comply with Intel
®
VT-d 1.2
specification.
Two VT-d DMA remap engines.
iGraphics DMA remap engine
DMI/PEG
Support for root entry, context entry, and default context
39-bit guest physical address and host physical address widths